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WHAT IS CLAIMED IS: 

1 . A public key infrastructure (PKI) comprising: 
a subject 

a certificAte authority issuing a first unsigned certificate to the subject 
that binds a publiakey of the subject to long-term identification information 
related to the subject, the certificate authority maintaining a certificate database 
of unsigned certificates in which it stores the first unsigned certificate; and 

a verifier maimaining a hash table containing cryptographic hashes of 
valid unsigned certificates corresponding to the unsigned certificates stored in 
the certificate database and including a cryptographic hash of the first unsigned 
certificate, wherein the subject presents the issued first unsigned certificate to the 
verifier for authentication and demonstrates that the subject has knowledge of a 
private key corresponding to the public key in the unsigned certificate. 

2. The PKI of claim \l wherein the first unsigned certificate includes an 
expiration date/time. 

3. The PKI of claim l\ wherein the first unsigned certificate does not include 
an expiration date/time. 

4. The PKI of claim 1 ^/herein the private key is stored in a smartcard 
accessible by the subject. 

5. The PKI of claim 1 wherein the private key is stored in a secure software 
wallet accessible by the subject. 

6. The PKI of claim 1 wherein the verifier computes the cryptographic hash 
of the first unsigned certificate with a collision-resistant hash function. 
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7. The PKI olfclaim 6 wherein the collision-resistant hash function is a 
SHA-1 hash functl 

8. The PKI oftlaim 6 wherein the collision-resistant hash function is a 
MD5 hash functions 



10 



9. The PKI of clahn 1 wherein the certificate authority and the verifier 
operate to revoke the first unsigned certificate when the binding of the subject's 
public key to the long-t^rm identification information related to the subject 
becomes invalid. 



10. The PKI of claiml9 wherein the certificate authority and the verifier 
perform the revocation protocol to revoke the first unsigned certificate, the 
revocation protocol including: 

15 the certificate authority retrieving first unsigned certificate from the 

certificate database and computing a cryptographic hash of the first unsigned 
certificate; 

the certificate authority sending a message to verifier containing the 
cryptographic hash of the first unsigned certificate and requesting that the 
20 verifier remove the corresponding cryptographic hash of the first unsigned 
certificate from its hash tablt; 

II 

the verifier removinglthe cryptographic hash of the first unsigned 
certificate from its hash tableland notifying the certificate authority that it has 
removed the cryptographic haph of the first unsigned certificate from its hash 
25 table; and 

the certificate authority collecting the notification sent by the verifier. 

\\ 

1 1 . The PKI of claim 1 0 wherein the revocation protocol includes the 
certificate authority marking the! first unsigned certificate in the certificate 

30 database as being invalid, for auditing purposes. 

i 
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12. The PKI of claim 10 wherein the revocation protocol includes the 



certificate authority 
database. 



deleting the first unsigned certificate from the certificate 



5 13. A method of authenticating a subject to a verifier in a public key 
infrastructure (PKI), the method comprising the steps of: 

issuing a first ubsigned certificate from a certificate authority to the 
subject that binds a putilic key of the subject to long-term identification 
information related to the subject; 
10 maintaining, at tie certificate authority, a certificate database of unsigned 

certificates; 

storing the first unsigned certificate in the certificate database; 
maintaining, at the verifier, a hash table containing cryptographic hashes 
of valid unsigned certificates corresponding to the unsigned certificates stored in 
15 the certificate database sjnd including a cryptographic hash of the first unsigned 
certificate; 

presenting the issued first unsigned certificate from the subject to the 
verifier for authentication; 

demonstrating, by the subject, that the subject has knowledge of a private 
20 key corresponding to the public key in the unsigned certificate. 

14. The method of claim 13 wherein the first unsigned certificate includes an 
expiration date/time 



aim 13 wherein the first unsigned certificate does not 



25 15. The method of c 

include an expiration dake/time 



16. 



17. 



The method of c 
storing the 



The method of c 



aim 13 further comprising the step of: 
private key in a smartcard accessible by the subject. 



aim 13 further comprising the step of: 
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storing the private key in a secur^ software wallet accessible by the 

subject. 

18. The method of claim 13 further comprising the step of: 

computing, by the verifier, the cryptographic hash of the first unsigned 
certificate with a collision-resistant/hash function. 



19. The method of claim 18 
SHA-1 hash function. 



lerein the collision-resistant hash function is a 



20. The method of claim 1 8 /wherein the collision-resistant hash function is a 
MD5 hash function. 

2 1 . The method of claim /l 3 further comprising the step of: 
15 revoking the first unsigned certificate when the binding of the subject's 

public key to the long-terryi identification information related to the subject 
becomes invalid. 



22. The method ojvclaim 21 wherein the revoking step includes the steps of: 
20 retrieving first unsigned certificate from the certificate database and 

computing a cryptographic hash of the first unsigned certificate; 

sending a message from certificate authority to verifier containing the 
cryptographic hash of the first unsigned certificate; 

requesting that the verifier remove the corresponding cryptographic hash 
25 of the first unsigned certificate from its hash table; 

remoy/ng the cryptographic hash of the first unsigned certificate from the 
hash table; 

noticing the certificate authority that the cryptographic hash of the first 
unsigned certificate is removed from the hash table; and 
30 collecting, at the certificate authority, the notification sent in the 

notifying step. 
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aim 22 wherein the revoking step further includes: 
unsigned certificate in the certificate database as being 
ses. 



24. The method of claim 22 wherein the revoking step further includes: 
deleting the first urteigned certificate from the certificate database. 
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